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5 CROSS-REFERENCE TO RELATED APPLICATIONS 

This application claims priority of provisional U.S. Patent Application Serial No. 
□ 60/239,465 filed October 10, 2000, titled "Method and Apparatus for Protecting Designs in 
3 SRAM-Based Programmable Logic Devices" under 35 U.S.C. § 1 19(e) which is incorporated 
,3 0 herein by reference. 

2 BACKGROUND OF THE INVENTION 

-!\ Field of the Invention 

O This invention relates generally to methods, systems, machine readable media and 

rjl 5 apparatus for protecting intellectual property ("IP"). More specifically, this invention relates to 
ff techniques for protecting designs and/or configuration data in SRAM-based programmable logic 
devices and similar configurable devices. 



Description of Related Art 

20 A programmable logic device (PLD) is a programmable integrated circuit that allows the 

user of the circuit, using software control, to customize the logic functions the circuit will 
perform. Examples of PLDs are FPGAs (Field Programmable Gate Arrays) and EPLDs 
(Erasable Programmable Logic Devices). The logic functions previously performed by small, 
medium and large scale integration integrated circuits can instead be performed by 

25 programmable logic devices. Programmable logic devices supplied by integrated circuit 

manufacturers like Altera Corporation of San Jose, California (a more detailed description of 
these products can be found at "www.altera.com") are not inherently capable of performing any 
specific function. The user, in conjunction with software supplied by the PLD manufacturer, can 
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program the PLD to perform the specific function or functions required by the user's application. 
The PLD then can function in a larger system designed by the user, just as though dedicated 
logic chips were employed. 

A typical PLD consists of an array of logic cells that can be individually programmed and 
5 arbitrarily interconnected to each other to provide internal input and output signals, thus 

permitting the performance of highly complex combinational and sequential logic functions. The 
program is implemented in the PLD by setting the states of programmable elements such as 
memory cells. These memory cells may be implemented with volatile memories, such as 
SRAMs, which lose their programmed states upon termination of power to the system. If the 

10 programmable elements used are volatile memories, the memory cells must be configured upon 
each system power-up in order to configure the PLD. 

In this disclosure, a "configurable device" or "configurable PLD" is defined to be a 
programmable device that ultimately contains the user logic (that is, the function(s) programmed 
and implemented in a PLD by a user). Typically, such a device has a volatile memory and must 

15 be programmed upon each power-up, though not every configurable device must possess these 
characteristics. Examples of configurable devices include SRAM PLDs and RAM-based PLDs 
(for example, Altera FLEX devices). 

Moreover, in this disclosure, a "secure device" is defined to be a non- volatile 
programmable device, a custom logic device, a microprocessor or other similar device that is a 

20 secure device (that is, a device from which a design cannot be directly determined or read out of 
the device, such as an Altera MAX device) and which installs user logic and possibly other 
functionalities into a configurable device (as defined above) from a configuration data memory (a 
"storage device"). As noted below, a storage device may be a component separate and distinct 
from a secure device or the two devices may be integrated to some degree in a single component. 

25 Where a storage device and a secure device are distinct, the two devices may be connected by a 
secure link to prevent copying of data transferred between the two devices. 

To use a configurable PLD (such as an SRAM-based FPGA), a user captures a circuit 
design using any of several design capture tools and then uses software tools to convert the 
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captured design into a specific bitwise representation which can be stored in a storage device, 
such as an EEPROM. Upon startup, the storage device supplies the bitwise representation to the 
configurable PLD, typically under the control of a secure device, enabling the configurable PLD 
to perform the function of the programmed circuit design. 
5 In some cases, the configuration data in a storage device is a bitwise representation that, 

when installed by a secure device, such as an EEPROM PLD, into a configurable device, such as 
an SRAM PLD, can implement user logic and possibly other functionalities to be used by the 
configurable device. However, the configuration data may also take on other formats and these 
are considered to be within the scope of the present invention. For example, either or both of the 
- LO configurable device and the secure device might include an integrated microprocessor. Part of 
the configuration data would then be computer code that would be used by the microprocessors. 
The microprocessors could implement the functionality of random number generators, 
encryption and decryption circuits, and comparators that might otherwise be implemented with 
logic. The actual user logic in the configurable device would still be implemented in the normal 

L 5 fashion - just the configuration security circuits would be implemented with the microprocessors. 
Any appropriate manner of storing and using configuration data is deemed to fall within the 
meaning of the term "configuration data" in this disclosure. 

By the time a bitwise representation is created, it represents significant amounts of time, 
money and effort. To encourage individuals and companies to continue to invest in the research 

20 and development of new circuit designs, and to protect the investment represented by existing 
completed designs, it is desirable to provide some method of protecting the circuit designs from 
illegal or otherwise unauthorized copying and/or use. 

To make an illegal copy of the circuit design, as implemented in a configurable logic 
device, one need only make a copy of the bitwise representation stored in the storage device. 

25 This can be done by copying the bitstreams transmitted externally between a configurable device 
and the device installing the configuration data and using the copies bitstream with a copied 
configurable device. Thus, the copied bitwise representation can be illegally used with other 
programmable logic devices. Therefore, it is desirable to make it more difficult to copy the 
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bitwise representation of the circuit design. 

Several techniques have been developed to address the illegal copying of PLD 
programming software by users. While these efforts have met with some success, they have 
some shortcomings. 

5 As noted above, microprocessors can been used to configure PLDs prior to operation. 

However, implementing a microprocessor to configure the device does not address the security 
issue. A microprocessor must still externally transmit the configuration data to the configurable 
PLD. The configuration data is of finite length and can therefore be captured and used to 
y configure another device without authority from the design's owner. 

310 In another prior technique, a configuration of which is shown in Figure 1, the device 

yi being programmed 1 1 0 sends a constant stream of data 120 to a control device 130. If the data 
't^ stream is not correct, the control device 130 can assert a reconfiguration signal 140 and stop 
Hp operation of the programmable device 110. The data stream 120 can be generated in a number of 
H different ways to prevent decoding of the data stream's pattern. However, if the reconfiguration 
15 signal is disconnected, the control device loses power over the device being programmed. While 
some measures can be taken to try and monitor the status of the devices' link, unscrupulous users 
can still circumvent these protective measures. Furthermore, the configuration data that is driven 
to the configurable PLD could be captured and used to configure the configurable PLD without 
the control device 130. 

20 Another technique for combating the theft of design software is found in United States 

Patent No. 5,970,142. In that design, the configurable device generates an encryption key which 
is transmitted to the control device (also referred to as a storage device in the '142 Patent). An 
encryption circuit in the control device encrypts all of the configuration data which is then sent to 
the PLD. The PLD subsequently decrypts the entire configuration data and uses the decrypted 

25 configuration data to program the PLD user logic. As will be appreciated, the system requires 
that all of the configuration data be encrypted and decrypted completely. This approach also 
requires either that special circuitry be incorporated into the PLD and the storage device or that 
unencrypted data be used to configure part of the configurable device before transfer of the 

ALTRP062/A603 



-4- 



encrypted configuration data. Configuration data cannot be used to create a decryptor in the 
configurable PLD since that data is encrypted before it is sent to the configurable PLD. As will 
be appreciated, this technique cannot be practically "retrofitted" into existing configurable PLD 
systems, due to the special circuitry and/or multiple configuration steps needed for its 
5 implementation. 

Techniques that permit full use of designs and configuration data while protecting the 
proprietary interests of the owners of the intellectual property incorporated in such designs, 
systems and devices would represent a significant advancement in the art. 
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BRIEF SUMMARY OF THE INVENTION 
The present invention provides the owner of configuration data for and/or designs in 
SRAM-based programmable logic devices and the like with systems, methods, machine readable 
media and apparatus to protect such configuration data and designs from unauthorized copying 
5 and/or use. 

Generally, methods and systems for controlling use of a design implemented as user logic 
in a programmed configurable device include programming the configurable device using 
configuration data provided by a secure device. The programmed configurable device includes 
user logic, a configurable device authorization code generator and a comparator. The user logic 

10 is immediately disabled after it is loaded into the configurable device. A configurable device 
authorization code is generated in the configurable device authorization code generator and is 
sent as one input to the comparator. A secure device authorization code is generated by a secure 
device authorization code generator and is sent as a second input to the comparator. The 
comparator compares the two inputs and, if the configurable device authorization code and 

1 5 secure device authorization code are identical, the user logic is then enabled. 

The authorization codes can be generated in various ways. In one embodiment, the 
configurable device and secure device each have a pseudo-random number generator (RNG). 
The configurable device RNG is a duplicate of the secure device RNG. A sequence generated by 
the secure device RNG is the secure device authorization code and is sent to the comparator to be 

20 compared with the sequence generated by the configurable device RNG (the configurable device 
authorization code). 

In another embodiment, the sequence generated by the secure device RNG is encrypted to 
generate a secure device signal which is sent to a decryptor in the configurable device. The 
decryptor decrypts the secure device signal to generate a secure device authorization code which 
25 is sent to the comparator. 

In still a different embodiment, the configurable device does not contain its own RNG. 
Rather, a secure device RNG generates a first sequence that is sent directly to the comparator as 
the secure device authorization code. The same first sequence is encrypted in the secure device 
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and sent to a decryptor in the configurable device. The decryptor decrypts the encrypted 
sequence and the decryptor's output (the configurable device authorization code) is compared to 
the secure device authorization code. 

In one other embodiment, the configurable device contains a single RNG that generates 
5 an original sequence that constitutes the configurable device authorization code and is one input 
to the comparator. The same original sequence is sent to an encryptor in the secure device, after 
which the encrypted sequence (the secure device signal) is sent back to a decryptor in the 
configurable device where it is decrypted to generate the secure device authorization code. The 
secure device authorization code is compared to the configurable device authorization code. 
=!10 In each embodiment, if the two authorization code inputs presented to the comparator 

U1 match, then the user logic is enabled. If the inputs do not match, or if at least one of the inputs is 
yp missing, the user logic remains disabled. 

^ Apparatus according to the present invention includes a secure device configured 

tj : according to the embodiments described above. The apparatus further comprises a machine 

U 

M= 15 readable configuration data storage medium on which is provided programming instructions for 
pi implementing the configurable device functionalities described above in connection with each 
r= embodiment. 

Further details and advantages of the invention are provided in the following Detailed 
Description and the associated figures. 
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BRIEF DESCRIPTION OF THE SEVERAL VIEWS OF THE DRAWING 
The present invention will be readily understood by the following detailed description in 
conjunction with the accompanying drawings, wherein like reference numerals designate like 
structural elements, and in which: 
5 FIG. 1 is a schematic diagram showing a prior art design of a configuration security 

system. 

FIG. 2 is a schematic diagram showing a computer system that can be used in connection 
with the present invention. 

FIG. 3 A is a schematic diagram of one embodiment of the present invention. 
10 FIG. 3B is a block flow diagram showing a method for controlling use of configuration 

data in connection with a programmable device according to one embodiment of the present 
invention. 

FIG. 4A is a schematic diagram of another embodiment of the present invention. 

FIG. 4B is a block flow diagram showing another method for controlling use of 
15 configuration data in connection with a programmable device according to one embodiment of 
the present invention. 

FIG. 5A is a schematic diagram of a different embodiment of the present invention. 

FIG. 5B is a block flow diagram showing a different method for controlling use of 
configuration data in connection with a programmable device according to one embodiment of 
20 the present invention. 

FIG. 6A is a schematic diagram of one other embodiment of the present invention. 

FIG. 6B is a block flow diagram showing one other method for controlling use of 
configuration data in connection with a programmable device according to one embodiment of 
the present invention. 
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DETAILED DESCRIPTION OF THE INVENTION 
The following detailed description of the invention will be with reference to one or more 
embodiments of the invention, but is not limited to such embodiments. The detailed description 
5 is intended only to be illustrative. Those skilled in the art will readily appreciate that the detailed 
description given herein with respect to the Figures is provided for explanatory purposes as the 
scope of the present invention extends beyond these embodiments. For example, the present 
invention is described in connection with an SRAM PLD configurable device (for example, an 
Altera FLEX device) and an EEPROM PLD secure device (for example, an Altera MAX device). 

10 However, another type of configurable device having volatile or non- volatile memory 

characteristics could be substituted for the SRAM PLD. Similarly, other secure devices having 
non- volatile memory characteristics could be substituted for the EEPROM PLD, so long as 
appropriate security measures are employed (for example, setting the security bit in an Altera 
MAX device). Also, an ASIC or other custom chip can be used in place of the EEPROM PLD 

15 used as an example herein. Consequently, the present invention is not limited solely to the 
SRAM PLD/EEPROM PLD pair disclosed. 

The present invention allows the owner of intellectual property ("IP") in the form of 
configuration data for a configurable PLD to protect against unauthorized use of the IP. A party 
generally will be unable to use a PLD incorporating the configuration data unless that party has 

20 authority to use the configuration information in a programmable device. Consequently, the 
proprietary interests of the IP owner are better protected because a party will not be able to use 
the configuration information without appropriate authorization. 

Generally, embodiments of the present invention may employ various processes 
involving data stored in or transferred through one or more computer systems. Embodiments of 

25 the present invention also may relate to a hardware device or other apparatus for performing 
these operations. This apparatus may be specially constructed for the required purposes, or it 
may be a general-purpose computer selectively activated or reconfigured by a computer program 
and/or data structure stored in the computer. The processes presented herein are not inherently 
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related to any particular computer or other apparatus. In particular, various general-purpose 
machines may be used with programs written in accordance with the teachings herein, or it may 
be more convenient to construct a more specialized apparatus to perform the required method 
steps. A particular structure for a variety of these machines will be apparent to those of ordinary 
5 skill in the art based on the description given below. 

In addition, embodiments of the present invention relate to computer readable media or 
computer program products that include program instructions and/or data (including data 
structures) for performing various computer-implemented operations. Examples of computer- 

0 readable media include, but are not limited to, magnetic media such as hard disks, floppy disks, 
y310 and magnetic tape; optical media such as CD-ROM disks; magneto-optical media; 

1 nl semiconductor memory devices, such as Flash, EPROM, and EEPROM memories, and hardware 
=f devices that are specially configured to store program instructions and data, such as read-only 

=F memory devices (ROM) and random access memory (RAM). The data and program instructions 

U, of this invention may also be embodied on a carrier wave or other transport medium. Examples 
1 5 of program instructions include both machine code, such as produced by a compiler, and files 

O containing higher level code that may be executed by the computer using an interpreter. 

M Figure 2 illustrates a typical computer system that, when appropriately configured or 

designed, can serve as an apparatus of this invention. The computer system 200 includes any 
number of processors 202 (also referred to as central processing units, or CPUs) that are coupled 
20 to storage devices including primary storage 206 (typically a random access memory, or RAM), 
primary storage 204 (typically a read only memory, or ROM). CPU 202 may be of various types 
including microcontrollers and microprocessors such as programmable devices (e.g., CPLDs and 
FPGAs) and unprogrammable devices such as gate array ASICs or general purpose 
microprocessors. As is well known in the art, primary storage 204 acts to transfer data and 
25 instructions uni-directionally to the CPU and primary storage 206 is used typically to transfer 
data and instructions in a bi-directional manner. Both of these primary storage devices may 
include any suitable computer-readable media such as those described above. A mass storage 
device 208 is also coupled bi-directionally to CPU 202 and provides additional data storage 
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capacity and may include any of the computer-readable media described above. Mass storage 
device 208 may be used to store programs, data and the like and is typically a secondary storage 
medium such as a hard disk. It will be appreciated that the information retained within the mass 
storage device 208, may, in appropriate cases, be incorporated in standard fashion as part of 
5 primary storage 206 as virtual memory. A specific mass storage device such as a CD-ROM 214 
may also pass data uni-directionally to the CPU. 

CPU 202 also is coupled to an interface 210 that connects to one or more input/output 
devices such as such as video monitors, track balls, mice, keyboards, microphones, touch- 
? =f sensitive displays, transducer card readers, magnetic or paper tape readers, tablets, styluses, voice 
310 or handwriting recognizers, or other well-known input devices such as, of course, other 
ill computers. Finally, CPU 202 optionally may be coupled to an external device such as a database 
t or a computer or telecommunications network using an external connection as shown generally 
+= at 212. With such a connection, it is contemplated that the CPU might receive information from 
N= the network, or might output information to the network in the course of performing the method 
t~L 1 5 steps described herein. 

jrf In one embodiment, a system such as computer system 200 used by a customer is in 

H= communication with a similar computer system managed by the IP owner. Information and 
programs, including configuration information files and other files can be provided via an 
interface 212 for downloading by the customer. Alternatively, such information, programs and 
20 files can be provided to a customer on a storage device. Once in a customer's possession, a 
memory device such as primary storage 206 or mass storage 208 buffers or stores, at least 
temporarily, a configuration information file or other data. The customer also may obtain one or 
more SRAM PLDs and at least one EEPROM PLD from a suitable source. The details of how IP 
owners and customers use the present inventions and this equipment are discussed in more detail 
25 below. 

As mentioned above, the present invention can be used in a variety of ways to limit use of 
the owner's configuration IP. For purposes of this discussion, the embodiments of the present 
invention will be described in the context of limiting use of configuration information in 
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connection with an SRAM PLD (a "configurable device") with configuration data supplied from 
an EEPROM PLD (a "secure device"). While the embodiments disclosed herein provide 
examples of how the present invention can be used, these examples are in no way limiting with 
respect to the scope of the invention. 
5 In one embodiment of the present invention, a configurable device, such as an SRAM 

PLD or similar device, requires confirmation that the device programming the programmable 
device has authority to use the configuration data. An SRAM PLD can be programmed in 
known ways by a secure device, such as an EEPROM PLD or similar device. The EEPROM 
J i PLD typically reads the configuration/programming data from a discrete non- volatile memory 
L ilO (for example, Flash, EEPROM, EPROM). In one embodiment of the present invention, the 
tf1 EEPROM PLD programs the SRAM PLD in a conventional manner. The EEPROM PLD has a 
", % control module that transmits configuration data from the configuration data memory to the 
+ : SRAM PLD via a suitable link. The configuration data memory typically is separate from the 
U EEPROM PLD, but could be integrated into the EEPROM PLD in some fashion, making the 
Ml 5 secure device and configuration memory a single component. Once the SRAM PLD has 
~ received the configuration data and has been programmed, the user logic installed in the SRAM 
M : PLD is immediately disabled in one of a number of ways familiar to those of skill in the art. The 
SRAM PLD user logic remains disabled pending the SRAM PLD's authentication, verification 
or authorization of the source of the SRAM PLD's programming. As discussed in more detail 
20 below, if the programming device's authentication, verification or authorization is incorrect or 
missing, the SRAM PLD user logic remains disabled and unusable. 

As seen in Figure 3 A, a programmed SRAM PLD 310 contains a pseudo-random number 
generator (RNG) 312, a data interface 313, a comparator 3 14, an enabling signal generator 318 
and user logic 319. Here, the configuration data implements not only the user logic 319, but also 
25 the configurable device components and/or functionalities of the authorization system (in Figure 
3 A, the configurable device components of the authorization system are the RNG 312, 
comparator 314, enabling signal generator 318 and, if used, the seed generator 311). The RNG 
3 12 is connected directly to the comparator 3 14 so that RNG 312 can send a data stream and/or 



-12- 



sequence to comparator 314 for comparison with another data stream and/or sequence at the 
second input of the comparator 314. (In the Figures, connections hetween components may be 
shown with arrows which, while intended to assist in understanding the flow of communications 
and/or data between components, do not limit the direction of communications/data flow in the 
5 invention. Connections between components can be implemented in a variety of ways known to 
those skilled in the art and are not limited to those shown and described herein for illustrative 
purposes.) The output of the comparator 314 is connected to the enabling signal generator 318. 
The authorization system of the present invention generates a configurable device authorization 
j== code and a secure device authorization code which are inputs to the comparator 314. When these 
JfllO authorization code inputs are identical, the signal generator 318 outputs a signal to the user logic 
yi 319 to enable the user logic, as appropriate. When the authorization code inputs to the 
iQ comparator 314 are not identical or when at least one of the inputs is missing, the user logic 319 
J° remains disabled and unusable. 

A secure EEPROM PLD 330 has a pseudo-random number generator 332 that is a 
~m= 15 duplicate of RNG 312, a data interface 333 and a control module 339. A suitable data link 320 
F? connects the devices 310, 330 and permits transmission of data between the devices. A 

^ configuration data memory 340 is connected to the EEPROM PLD 330 by a suitable secure link 

341 that permits control and transmission of the configuration data in memory 340 by the 
EEPROM PLD 330 as described herein and as is well known to those skilled in the art. The 
20 control module 339 is configured to send the configuration data via interface 333, link 320 and 
interface 3 1 3 to configure the user logic 3 19 of SRAM PLD 3 1 0. This configuring of the user 
logic module 3 19 is well known in the art. Moreover, in addition to the user logic 319, the 
configuration data in memory 340 configures authorization system components and/or 
functionalities to be used in accordance with the present invention to authenticate, verify or 
25 otherwise authorize use of the configuration data by the SRAM PLD 310. 

According to one embodiment of the present invention, a seed is provided by either of the 
devices (or from any other suitable source) to initiate parallel operation of the devices' respective 
pseudo-random number generators 312, 332. As seen in Figure 3 A, the seed generator may be 
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located in one or more alternate locations, including, for example, at a generator 3 1 1 in the 
SRAM PLD 310, a generator 331 in the EEPROM PLD, or in a generator 343 external to the 
SRAM PLD 310 and EEPROM PLD 330. Throughout the description of and drawings 
pertaining to the invention, such seeding is presumed wherever appropriate. The locations and 
5 techniques for implementing such seeding are well known to those of skill in the art. For 

example, in one embodiment, an initiating bitstream from the EEPROM PLD 330 includes the 
seed for the SRAM PLD RNG 3 12 and the EEPROM PLD RNG 332. In the embodiment shown 
in Figure 3 A, the output of RNG 312 is the configurable device authorization code and the output 
' of RNG 332 is the secure device authorization code. (In this disclosure, one authorization signal 

'Jfo sent from the secure device to the configurable device via link 320 may be referred to as the 
111 "secure device signal" while one input to the comparator will be referred to as the "secure device 
.JI authorization code." The secure device authorization code is a data stream and/or sequence 
:f 51 based on the secure device signal; that is, the secure device authorization code is either identical 
!=* to the secure device signal or derived from the secure device signal through one or more data 
J 5 manipulation techniques, such as decryption.) 

One method of the present invention, usable with the system of Figure 3 A, is shown in 
Figure 3B. The method starts at 350 and at 355 the secure device 330 transmits the configuration 
data to the SRAM PLD 310 to configure the SRAM PLD 310. Immediately after completion of 
the configuring of SRAM PLD 310, the user logic 319 of SRAM PLD 310 is disabled at 360. At 
20 365 the EEPROM PLD RNG 332 and the SRAM PLD RNG 3 12 are seeded. At 370 the two 

duplicate RNGs 312, 332 begin sending their respective data inputs to the comparator 314 which 
compares the data at 375. Again, RNG 312 generates and sends the configurable device 
authorization code and RNG 332 generates and sends the secure device authorization code. At 
decision 380, if the data from the RNGs 312, 332 match, the user logic 319 of SRAM PLD 310 
25 is enabled 385. If the data do not match, or if data for at least one of the inputs for the 
comparator 314 is missing, the user logic 319 remains disabled 390. 

Another embodiment of the present invention is shown in Figure 4A. An SRAM PLD 
410 again possesses an RNG 412 connected directly to a comparator 414 and to a 
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communication interface 413. The output of RNG 412 sent to the comparator 414 is the 
configurable device authorization code. A communication link 420 connects the SRAM PLD 
410 to the interface 433 of an EEPROM PLD 430 that includes a control module 439 and an 
encryption engine or other encryptor 436. EEPROM PLD 430 is connected by secure link 441 to 
a configuration data memory 440. The data generated by the SRAM PLD RNG 412 can be sent 
to the encryptor 436 of the EEPROM PLD 430, encrypted and sent back to the SRAM PLD 410 
via link 420. The encrypted data, a secure device signal, is sent to a decryptor 416 in the SRAM 
PLD 410, which is configured to decrypt data from the EEPROM PLD 430 and feed the 
decrypted data to the comparator 414. The output of decryptor 416 is the secure device 
authorization code. Again, if the inputs of comparator 414 match, the enabling signal generator 
418 enables previously disabled user logic 419. If the data do not match, or if data for at least 
one of the inputs for the comparator 414 is missing, the user logic 419 remains disabled. 

Figure 4B shows another method of the invention usable with the system illustrated in 
Figure 4A. After starting 450, the EEPROM PLD 430 configures the SRAM PLD 410 at 455. 
Again, the SRAM PLD user logic 419 is immediately disabled at 460. At 465 the RNG 412 of 
SRAM PLD 410 sends its data, the configurable device authorization code, directly to 
comparator 414 and to the encryptor 436 in EEPROM PLD 430. The encrypted data from 
encryptor 436, the secure device signal, is sent back to the SRAM PLD 410 via link 420 and is 
decrypted by decryptor 416 at 470. At 475 the comparator 414 compares the data received 
directly from the RNG 412 with the decrypted data output from decryptor 416, the secure device 
authorization code. At decision 480, if the data match, then the authorization indication signal 
generator 418 enables the SRAM PLD 410 for operation at 485. If the authorization code data 
do not match at decision 480, or if data for at least one of the inputs for the comparator 414 is 
missing, then the user logic 419 of SRAM PLD 410 remains disabled and unusable at 490. 

Figure 5 A shows another embodiment of the present invention. An SRAM PLD 510 
again possesses an RNG 512 connected directly to a comparator 514. A communication link 520 
connects the SRAM PLD interface 513 to the EEPROM PLD interface 533. EEPROM PLD 530 
includes a control module 539 connected by a secure link 541 to a configuration data memory 
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540 and an encryption engine or other encryptor 536 connected to an RNG 532 that is a duplicate 
of RNG 512 (again identical seeding of the RNGs 512, 532 is used to achieve duplicate RNG 
outputs). The data generated by the EEPROM PLD RNG 532 is sent to the encryptor 536, 
encrypted and transmitted as the secure device signal to the decryptor 516 in SRAM PLD 510 via 
interface 533, link 520 and interface 513. Decryptor 516 is configured to decrypt data from the 
encryptor 536 of EEPROM PLD 530. Decryptor 516 transmits its output, the secure device 
authorization code, to the comparator 514. If the output of RNG 512 (the configurable device 
authorization code) and the output of decryptor 516 (the secure device authorization code) are 
identical, then the enabling signal generator 518 enables the user logic 519. If the inputs to 
comparator 5 14 do not match, or if data for one or both of the inputs for the comparator 5 14 is 
missing, the SRAM PLD user logic 519 remains disabled. 

Figure 5B shows a method of the invention usable with the system illustrated in Figure 
5A. After starting 550, the EEPROM PLD 530 configures SRAM PLD 510 at 555. Again, the 
user logic 519 of SRAM PLD 510 is immediately disabled at 560. At 565 the RNG 512 of 
SRAM PLD 510 sends its data directly to comparator 514 as the configurable device 
authorization code while RNG 532 of EEPROM PLD 530 sends its data to the encryptor 536 in 
EEPROM PLD 530. The encrypted data from encryptor 536 is sent as a secure device signal by 
interface 533 to the SRAM PLD 510 via link 520 and interface 513 and is decrypted by 
decryptor 516 at 570. At 575 the comparator 514 compares the data received directly from the 
RNG 512, the configurable device authorization code, with the data output from decryptor 516, 
the secure device authorization code. At decision 580, if the data from RNG 512 and decryptor 
5 1 6 match, then the enabling signal generator 5 1 8 enables the user logic 5 1 9 of SRAM PLD 510 
for operation at 585. If the inputs to comparator 5 14 do not match, or if data for one or both of 
the inputs for the comparator 514 is missing, the SRAM PLD user logic 519 remains disabled at 
590. 

In systems, methods and apparatus such as those disclosed and claimed herein, additional 
security typically requires the use of additional resources in the configurable device and/or the 
secure device. A user or IP owner can decide in any given case whether the cost of additional 
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security is warranted. 

In addition, a comparator in configurations such as those disclosed and claimed herein 
can alternatively be configured to initiate a disabling signal from a disabling signal generator if 
the SRAM PLD user logic remains in an operational mode after programming by the secure 
device. For example, an error bit can be set by a disabling signal generator to disable the SRAM 
PLD. The error bit may be used to tristate outputs, stop operation of a state machine or in any 
other way prevent unauthorized use of the programmed SRAM PLD. In this situation, the 
disabling signal would be sent if an incorrect or no authorization code or other communication is 
received from the secure device. 

Another embodiment of the present invention is shown in Figure 6 A. EEPROM PLD 
630 again has a control module 639 and is connected to a configuration memory 640 via a secure 
link 641. The SRAM PLD 610 does not possess its own RNG, but has an interface 613 
connected directly to comparator 614 and to decryptor 616, the output of which is connected to 
one input of the comparator 614. Link 620 connects the interface 613 of the SRAM PLD 610 to 
the interface 633 of EEPROM PLD 630. EEPROM PLD 630 has an RNG 632 that preferably 
generates a continuous data stream with one output of RNG 632 going directly to interface 633 
and another output connected to an encryptor 636. The output of encryptor 636 also is connected 
to the interface 633. 

The RNG 632 thus can send continuous plaintext and encrypted data streams to the 
interface 633 through link 620 to the interface 613 of the SRAM PLD 610. As will be 
appreciated by those of skill in the art, continuous data streams are used to make capture and use 
of the configuration data and/or authorization codes more difficult or impossible by unauthorized 
users. The data stream from RNG 632 is transmitted as plaintext to one input of the comparator 
614 as the secure device authorization code. An encrypted version of the same data is sent by 
encryptor 636 to the decryptor 616. The output of decryptor 616 is the configurable device 
authorization code and is sent to the other input of the comparator 614, which compares its two 
inputs. If the output of RNG 632 and the output of decryptor 616 are identical, then the enabling 
signal generator 618 enables the user logic 619. If the inputs to comparator 614 do not match, or 
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if data for one or both of the inputs for the comparator 614 is missing, the SRAM PLD user logic 
619 remains disabled. 

Figure 6B shows one method of the present invention usable with the system illustrated 
in Figure 6A. After starting 650, the EEPROM PLD 630 configures SRAM PLD 610 at 655. 
5 Again, the user logic 6 1 9 of SRAM PLD 6 1 0 is immediately disabled at 660. At 665 the RNG 
632 of EEPROM PLD 630 sends a continuous data stream to the input of encryptor 636 and 
directly to one input of comparator 614 in SRAM PLD 610. At 670 the continuous encrypted 
data stream from the output of encryptor 636 is sent to the input of decryptor 616 where it is 
To decrypted. The comparator 614 compares the continuous data output of decryptor 616 (the 
ri 0 configurable device authorization code) with the continuous data stream received from the RNG 
Ul 632 (the secure device authorization code) at 675. At decision 680, if the data streams input to 
y3 comparator 614 match, then enabling signal generator 618 enables the user logic 619 of SRAM 
PLD 61 0 for operation at 685. If the inputs to comparator 614 do not match, or if data for one or 
both of the inputs for the comparator 614 is missing, the SRAM PLD user logic 619 remains 
M5 disabled at 690. 

As noted above, any appropriate encryption and decryption engines (or other data 
^ manipulation techniques) can be used in connection with the present invention. The techniques 
used must allow the configurable device to verify the identity of the secure device. Therefore, 
reversible encryption/decryption algorithms can be used. However, other data manipulation 
20 techniques will be obvious to one of ordinary skill in the art and may be employed as 

appropriate. Allocation of resources between the configurable device and the secure device 
might affect this decision and can be evaluated on a case by case basis, depending on the 
application the user has in mind for the system. If encryption and decryption are used 
specifically, those skilled in the art will be aware of a number of encryption algorithms and 
25 techniques. 

EEPROM PLD architecture does not always lend itself well to implementation of 
encryption algorithms. Moreover, simpler encryption algorithms (appropriate for EEPROM 
PLDs) and limits on keys and other elements also can limit the effectiveness of this type of 
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security system. However, optimal encryption algorithms suitable to this type of system will be 
apparent to those skilled in the art. Because such an algorithm is parameterized and will be 
unknown to an external party, the algorithm will be much more resistant to known plaintext and 
differential cryptanalysis attacks. The systems, methods and apparatus disclosed and claimed 
here exploit the fact that it is difficult to reverse engineer a design from the configuration bit- 
stream. Such systems, methods and apparatus typically require a simple, secure programmable 
device such as an EEPROM PLD or embedded microcontroller with security bits. 

Generally, it is sufficient that a pseudo-random sequence used in connection with the 
present invention satisfy the following two criteria - (1) be of sufficient length to make 
capturing the entire sequence impractical, and (2) be sufficiently difficult to determine the seeds 
(or keys) to any pseudo-random sequence generator used, even if the architecture and 
configuration of the sequence generator are known. 

While it is never possible to guarantee absolute security, the systems, methods and 
apparatus described and claimed herein make the SRAM FPGA design as secure (or very close to 
as secure) from duplication as it would be if implemented in a more secure technology such as 
Antifuse FPGA, EEPROM PLD or custom ASIC. 

The many features and advantages of the present invention are apparent from the written 
description and drawings, and thus, the appended claims are intended to cover all such features 
and advantages of the invention. Further, since numerous modifications and changes will readily 
occur to those skilled in the art, the present invention is not limited to the exact construction and 
operation as illustrated and described. Hence, all suitable modifications and equivalents are 
deemed to fall within the scope of the invention. 
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